From 4b73f1a1aeb6b6d6e15489ef504ba08d8cdc2504 Mon Sep 17 00:00:00 2001
From: Jacques Distler <distler@golem.ph.utexas.edu>
Date: Wed, 26 May 2010 01:27:09 -0500
Subject: [PATCH] More rails_xss Plugin fun

:-(
---
 app/views/wiki/locked.rhtml | 2 +-
 app/views/wiki/new.rhtml    | 2 +-
 app/views/wiki/search.rhtml | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/app/views/wiki/locked.rhtml b/app/views/wiki/locked.rhtml
index 6228c572..ad36807d 100644
--- a/app/views/wiki/locked.rhtml
+++ b/app/views/wiki/locked.rhtml
@@ -1,4 +1,4 @@
-<%- @title = "#{@page.plain_name} is locked" -%>
+<%- @title = "#{@page.plain_name} is locked".html_safe -%>
 
 <p>
   <%= link_to_page(h(@page.locked_by.purify)) %>
diff --git a/app/views/wiki/new.rhtml b/app/views/wiki/new.rhtml
index 21027a14..3f3cbb8f 100644
--- a/app/views/wiki/new.rhtml
+++ b/app/views/wiki/new.rhtml
@@ -1,5 +1,5 @@
 <%- 
-  @title = "Creating #{CGI.escapeHTML(WikiWords.separate(@page_name))}"
+  @title = "Creating #{WikiWords.separate(@page_name).escapeHTML}".html_safe
   @content_width = 720
   @hide_navigation = true
 -%>
diff --git a/app/views/wiki/search.rhtml b/app/views/wiki/search.rhtml
index e467cfaa..59d412ea 100644
--- a/app/views/wiki/search.rhtml
+++ b/app/views/wiki/search.rhtml
@@ -1,4 +1,4 @@
-<%- @title = "Search results for \"#{h @query}\"" -%>
+<%- @title = "Search results for \"#{h @query}\"".html_safe -%>
 
 <%- unless @title_results.empty? -%>
 <h2><%= @title_results.length %> page(s) containing search string in the page name:</h2>